Content-Security-Policy Analysis for https://www.kustomer.com

Open Cached · just now

4 directives

Content-Security-Policy

Content-Security-Policy: frame-ancestors 'self' https://kustomer.sanity.studio https://www.sanity.io https://www2-kustomer.vercel.app; img-src 'self' data: https://www.google-analytics.com https://www.google.com https://googleads.g.doubleclick.net https://ad.doubleclick.net https://px.ads.linkedin.com https://www.facebook.com https://www.googletagmanager.com https://pagead2.googlesyndication.com https://cdn.sanity.io https://www.kustomer.com https://*.wistia.com https://*.wistia.net https://*.monstercampaigns.com https://*.hsforms.com https://*.reddit.com https://t.co https://*.twitter.com https://cdn-cookieyes.com https://bat.bing.com https://*.hubspot.com https://*.liadm.com https://aorta.clickagy.com https://*.openx.net https://cdn.debounce.io https://*.clarity.ms https://cm.g.doubleclick.net; connect-src 'self' https://www.google-analytics.com https://analytics.google.com https://stats.g.doubleclick.net https://www.google.com https://cdn.sanity.io https://api.sanity.io https://*.api.sanity.io https://*.sanity.io https://kustomer.sanity.studio https://*.chilipiper.com https://js.hs-scripts.com https://*.hubspot.com https://forms.hscollectedforms.net https://api.hubapi.com https://cdn-cookieyes.com https://log.cookieyes.com https://a.omappapi.com https://api.omappapi.com https://*.monstercampaigns.com https://jobs.ashbyhq.com https://data.sequel.io https://pixel-config.reddit.com https://api.cr-relay.com https://pvdpix.com https://app.clearbit.com https://*.clearbitjs.com https://api.vector.co https://px.ads.linkedin.com https://e.clarity.ms https://o.clarity.ms https://*.crazyegg.com https://js.zi-scripts.com https://*.hsappstatic.net https://*.liadm.com https://bat.bing.com https://ws.zoominfo.com https://*.wistia.com https://*.wistia.net https://browser.sentry-cdn.com https://pagead2.googlesyndication.com https://aorta.clickagy.com https://api.debounce.io https://cdn.debounce.io; frame-src 'self' https://www.googletagmanager.com https://www.youtube.com https://www.youtube-nocookie.com https://*.chilipiper.com https://*.wistia.com https://*.wistia.net https://player.vimeo.com https://www.loom.com https://jobs.ashbyhq.com https://*.liadm.com https://embed.sequel.io https://eulerapp.com https://api.vector.co

frame-ancestors Keyword —

'self'

frame-ancestors Host

Sanity

https://kustomer.sanity.studio

ASN | Google Cloud

frame-ancestors Host

Sanity

https://www.sanity.io

frame-ancestors Host

Vercel

https://www2-kustomer.vercel.app

img-src Keyword —

'self'

img-src Scheme —

data:

img-src Host

Google Analytics

https://www.google-analytics.com

img-src Host

Google Search

https://www.google.com

img-src Host

Google DoubleClick

https://googleads.g.doubleclick.net

img-src Host

Google DoubleClick

https://ad.doubleclick.net

img-src Host

LinkedIn

https://px.ads.linkedin.com

ASN | Microsoft

img-src Host

Facebook

https://www.facebook.com

img-src Host

Google Tag Manager

https://www.googletagmanager.com

img-src Host

Google AdSense

https://pagead2.googlesyndication.com

img-src Host

Sanity

https://cdn.sanity.io

ASN | Google Cloud

img-src Host —

https://www.kustomer.com

img-src Host

Wistia

https://*.wistia.com

img-src Host

Wistia

https://*.wistia.net

img-src Host —

https://*.monstercampaigns.com

ASN | Cloudflare

img-src Host

HubSpot Forms

https://*.hsforms.com

img-src Host

Reddit

https://*.reddit.com

img-src Host

Twitter

https://t.co

ASN | Cloudflare

img-src Host

Twitter

https://*.twitter.com

ASN | Cloudflare

img-src Host

CookieYes

https://cdn-cookieyes.com

ASN | Cloudflare

img-src Host

Microsoft Advertising

https://bat.bing.com

ASN | Microsoft

img-src Host

HubSpot

https://*.hubspot.com

ASN | Cloudflare

img-src Host —

https://*.liadm.com

img-src Host

Clickagy

https://aorta.clickagy.com

img-src Host

OpenX

https://*.openx.net

ASN | Google Cloud

img-src Host —

https://cdn.debounce.io

ASN | Cloudflare

img-src Host

Microsoft Clarity

https://*.clarity.ms

ASN | Microsoft

img-src Host

Google DoubleClick

https://cm.g.doubleclick.net

connect-src Keyword —

'self'

connect-src Host

Google Analytics

https://www.google-analytics.com

connect-src Host

Google Analytics

https://analytics.google.com

connect-src Host

Google DoubleClick

https://stats.g.doubleclick.net

connect-src Host

Google Search

https://www.google.com

connect-src Host

Sanity

https://cdn.sanity.io

ASN | Google Cloud

connect-src Host

Sanity

https://api.sanity.io

ASN | Google Cloud

connect-src Host

Sanity

https://*.api.sanity.io

ASN | Google Cloud

connect-src Host

Sanity

https://*.sanity.io

ASN | Google Cloud

connect-src Host

Sanity

https://kustomer.sanity.studio

ASN | Google Cloud

connect-src Host

Chili Piper

https://*.chilipiper.com

ASN | Google Cloud

connect-src Host

HubSpot

https://js.hs-scripts.com

ASN | Cloudflare

connect-src Host

HubSpot

https://*.hubspot.com

ASN | Cloudflare

connect-src Host

HubSpot Forms

https://forms.hscollectedforms.net

ASN | Cloudflare

connect-src Host

HubSpot

https://api.hubapi.com

ASN | Cloudflare

connect-src Host

CookieYes

https://cdn-cookieyes.com

ASN | Cloudflare

connect-src Host

CookieYes

https://log.cookieyes.com

ASN | Cloudflare

connect-src Host

OptinMonster

https://a.omappapi.com

connect-src Host

OptinMonster

https://api.omappapi.com

ASN | Cloudflare

connect-src Host —

https://*.monstercampaigns.com

ASN | Cloudflare

connect-src Host

Ashby

https://jobs.ashbyhq.com

ASN | Cloudflare

connect-src Host

Sequel

https://data.sequel.io

connect-src Host

Reddit

https://pixel-config.reddit.com

connect-src Host —

https://api.cr-relay.com

connect-src Host —

https://pvdpix.com

ASN | Cloudflare

connect-src Host

ClearBit

https://app.clearbit.com

connect-src Host

ClearBit

https://*.clearbitjs.com

connect-src Host

Vector

https://api.vector.co

connect-src Host

LinkedIn

https://px.ads.linkedin.com

ASN | Microsoft

connect-src Host

Microsoft Clarity

https://e.clarity.ms

ASN | Microsoft

connect-src Host

Microsoft Clarity

https://o.clarity.ms

ASN | Microsoft

connect-src Host

Crazy Egg

https://*.crazyegg.com

connect-src Host

ZoomInfo

https://js.zi-scripts.com

ASN | Cloudflare

connect-src Host

HubSpot

https://*.hsappstatic.net

ASN | Cloudflare

connect-src Host —

https://*.liadm.com

connect-src Host

Microsoft Advertising

https://bat.bing.com

ASN | Microsoft

connect-src Host

ZoomInfo

https://ws.zoominfo.com

ASN | Cloudflare

connect-src Host

Wistia

https://*.wistia.com

connect-src Host

Wistia

https://*.wistia.net

connect-src Host

Sentry

https://browser.sentry-cdn.com

connect-src Host

Google AdSense

https://pagead2.googlesyndication.com

connect-src Host

Clickagy

https://aorta.clickagy.com

connect-src Host —

https://api.debounce.io

ASN | Cloudflare

connect-src Host —

https://cdn.debounce.io

ASN | Cloudflare

frame-src Keyword —

'self'

frame-src Host

Google Tag Manager

https://www.googletagmanager.com

frame-src Host

YouTube

https://www.youtube.com

frame-src Host

YouTube

https://www.youtube-nocookie.com

frame-src Host

Chili Piper

https://*.chilipiper.com

ASN | Google Cloud

frame-src Host

Wistia

https://*.wistia.com

frame-src Host

Wistia

https://*.wistia.net

frame-src Host

Vimeo

https://player.vimeo.com

ASN | Cloudflare

frame-src Host

Loom

https://www.loom.com

frame-src Host

Ashby

https://jobs.ashbyhq.com

ASN | Cloudflare

frame-src Host —

https://*.liadm.com

frame-src Host

Sequel

https://embed.sequel.io

frame-src Host —

https://eulerapp.com

ASN | Cloudflare

frame-src Host

Vector

https://api.vector.co

Content-Security-Policy-Report-Only

No report-only CSP headers found.